Senior Security Engineer, Security Assurance (Remote, Canada EST)
Grafana Labs
- Canada
- Permanent
- Full-time
- Work autonomously to develop, build, and roll out information, cyber, open source, and cloud security governance frameworks.
- Design, build, launch, and scale the asset intelligence & governance program on Grafana.
- Establish a cadence for security program reviews, support existing accreditations, and identify strategic maturity opportunities for compliance.
- Design and deliver monthly technology and security risk management workshops.
- Build reasonable and self-serve partnerships with cross-functional stakeholders who are decision-makers and contributors to security initiatives.
- Socialize and provide awareness of policies, standards, processes, and controls with relevant stakeholders.
- Serve as the security SME to partner with engineering and operations teams on the business continuity and disaster readiness program.
- Design, build, and manage Security GRC and Disaster Readiness reporting metrics and dashboards.
- Enjoy learning, growing, and supporting others to do the same.
- Be very comfortable with at least one scripting language and a query language like SQL.
- Enjoy navigating cloud-native environments and building automated processes for security posture management, compliance engineering, and continuous controls monitoring (indicative platforms and tools include GCP, AWS, Azure, Kubernetes, cloudquery, Grafana, LogicGate, Secureframe, Jira, ServiceNow GRC, anecdotes.ai, Drata, Vanta).
- Have some experience working with Platform and Security to scope, operationalize, and scale Business Impact Assessments (BIAs), Business Continuity Management Systems (BCMS), and Disaster Readiness Strategies for cloud-first companies.
- Know how to define a project plan, milestones, and key performance indicators to determine the effectiveness of your work delivery.
- Enjoy working on complex solutions - Grafana is a highly technical solution with avid followers who rely on it everyday and care deeply about their workflows.
- Enjoy working autonomously. While we defer to collaboration and teamwork, you should enjoy taking a problem and autonomously designing the solution, engaging the right stakeholders, and demonstrating the “own it” mindset to run through implementation.
- Have an interest in Grafana's stack and a desire to contribute to our open-source foundations - We love dogfooding and giving back!
- Are able to communicate clearly in written and spoken English.
- Can create impact in a pragmatic, structured, simple and quick way.
- BS/MS degree in engineering, computer science, or information security, or equivalent experience.
- CISSP, CISA, CISM, and cloud security solutions are a plus.